Software Product Security Engineer (Monterrey)

Overview
A Software Product Security role (often called Product Security Engineer or ProdSec) is the bridge between traditional cybersecurity and software engineering.
Unlike IT security, which focuses on protecting the company's internal network, Product Security focuses on ensuring the software the company sells or provides is resilient against attacks.
About the Role
The Product Security Engineer works directly with DevOps and Engineering teams to bake security into the Software Development Life Cycle (SDLC).
The goal is to move security – finding and fixing vulnerabilities during the design and coding phases rather than after the product has launched.
Responsibilities
Secure Design & Threat Modeling
: Reviewing new features before a single line of code is written; identifying potential attack vectors and suggesting mitigations.
Vulnerability Management
: Triaging bugs found via automated scanners, internal audits, or Bug Bounty programs.